authelia/internal/configuration/validator/notifier.go

package validator

import (
	"errors"
	"fmt"

	"github.com/authelia/authelia/internal/configuration/schema"
)

// ValidateNotifier validates and update notifier configuration.
//nolint:gocyclo // TODO: Remove in 4.28. Should be able to remove this during the removal of deprecated config.
func ValidateNotifier(configuration *schema.NotifierConfiguration, validator *schema.StructValidator) {
	if configuration.SMTP == nil && configuration.FileSystem == nil {
		validator.Push(fmt.Errorf("Notifier should be either `smtp` or `filesystem`"))
		return
	}

	if configuration.SMTP != nil && configuration.FileSystem != nil {
		validator.Push(fmt.Errorf("Notifier should be either `smtp` or `filesystem`"))
		return
	}

	if configuration.FileSystem != nil {
		if configuration.FileSystem.Filename == "" {
			validator.Push(fmt.Errorf("Filename of filesystem notifier must not be empty"))
		}

		return
	}

	if configuration.SMTP != nil {
		if configuration.SMTP.StartupCheckAddress == "" {
			configuration.SMTP.StartupCheckAddress = "test@authelia.com"
		}

		if configuration.SMTP.Host == "" {
			validator.Push(fmt.Errorf("Host of SMTP notifier must be provided"))
		}

		if configuration.SMTP.Port == 0 {
			validator.Push(fmt.Errorf("Port of SMTP notifier must be provided"))
		}

		if configuration.SMTP.Sender == "" {
			validator.Push(fmt.Errorf("Sender of SMTP notifier must be provided"))
		}

		if configuration.SMTP.Subject == "" {
			configuration.SMTP.Subject = schema.DefaultSMTPNotifierConfiguration.Subject
		}

		if configuration.SMTP.Identifier == "" {
			configuration.SMTP.Identifier = schema.DefaultSMTPNotifierConfiguration.Identifier
		}

		if configuration.SMTP.TLS == nil {
			configuration.SMTP.TLS = schema.DefaultSMTPNotifierConfiguration.TLS

			// Deprecated. Maps deprecated values to the new ones. TODO: Remove in 4.28.
			if configuration.SMTP.DisableVerifyCert != nil {
				validator.PushWarning(errors.New("DEPRECATED: SMTP Notifier `disable_verify_cert` option has been replaced by `notifier.smtp.tls.skip_verify` (will be removed in 4.28.0)"))

				configuration.SMTP.TLS.SkipVerify = *configuration.SMTP.DisableVerifyCert
			}
		}

		// Deprecated. Maps deprecated values to the new ones. TODO: Remove in 4.28.
		if configuration.SMTP.TrustedCert != "" {
			validator.PushWarning(errors.New("DEPRECATED: SMTP Notifier `trusted_cert` option has been replaced by the global option `certificates_directory` (will be removed in 4.28.0)"))
		}

		if configuration.SMTP.TLS.ServerName == "" {
			configuration.SMTP.TLS.ServerName = configuration.SMTP.Host
		}

		return
	}
}
Add validation for notifier configuration. 2020-01-21 20:15:40 +00:00			`package validator`

[MISC] Update durations to notation format and housekeeping (#824) * added regulation validator * made regulations find_time and ban_time values duration notation strings * added DefaultRegulationConfiguration for the validator * made session expiration and inactivity values duration notation strings * TOTP period does not need to be converted because adjustment should be discouraged * moved TOTP defaults to DefaultTOTPConfiguration and removed the consts * arranged the root config validator in configuration file order * adjusted tests for the changes * moved duration notation docs to root of configuration * added references to duration notation where applicable * project wide gofmt and goimports: * run gofmt * run goimports -local github.com/authelia/authelia -w on all files * Make jwt_secret error uniform and add tests * now at 100% coverage for internal/configuration/validator/configuration.go 2020-04-05 12:37:21 +00:00			`import (`
[FEATURE] Enhance LDAP/SMTP TLS Configuration and Unify Them (#1557) * add new directive in the global scope `certificates_directory` which is used to bulk load certs and trust them in Authelia * this is in ADDITION to system certs and are trusted by both LDAP and SMTP * added a shared TLSConfig struct to be used by both SMTP and LDAP, and anything else in the future that requires tuning the TLS * remove usage of deprecated LDAP funcs Dial and DialTLS in favor of DialURL which is also easier to use * use the server name from LDAP URL or SMTP host when validating the certificate unless otherwise defined in the TLS section * added temporary translations from the old names to the new ones for all deprecated options * added docs * updated example configuration * final deprecations to be done in 4.28.0 * doc updates * fix misc linting issues * uniform deprecation notices for ease of final removal * added additional tests covering previously uncovered areas and the new configuration options * add non-fatal to certificate loading when system certs could not be loaded * adjust timeout of Suite ShortTimeouts * add warnings pusher for the StructValidator * make the schema suites uninform * utilize the warnings in the StructValidator * fix test suite usage for skip_verify * extract LDAP filter parsing into it's own function to make it possible to test * test LDAP filter parsing * update ErrorContainer interface * add tests to the StructValidator * add NewTLSConfig test * move baseDN for users/groups into parsed values * add tests to cover many of the outstanding areas in LDAP * add explicit deferred LDAP conn close to UpdatePassword * add some basic testing to SMTP notifier * suggestions from code review 2021-01-04 10:28:55 +00:00			`"errors"`
[MISC] Update durations to notation format and housekeeping (#824) * added regulation validator * made regulations find_time and ban_time values duration notation strings * added DefaultRegulationConfiguration for the validator * made session expiration and inactivity values duration notation strings * TOTP period does not need to be converted because adjustment should be discouraged * moved TOTP defaults to DefaultTOTPConfiguration and removed the consts * arranged the root config validator in configuration file order * adjusted tests for the changes * moved duration notation docs to root of configuration * added references to duration notation where applicable * project wide gofmt and goimports: * run gofmt * run goimports -local github.com/authelia/authelia -w on all files * Make jwt_secret error uniform and add tests * now at 100% coverage for internal/configuration/validator/configuration.go 2020-04-05 12:37:21 +00:00			`"fmt"`
Add validation for notifier configuration. 2020-01-21 20:15:40 +00:00
[MISC] Update durations to notation format and housekeeping (#824) * added regulation validator * made regulations find_time and ban_time values duration notation strings * added DefaultRegulationConfiguration for the validator * made session expiration and inactivity values duration notation strings * TOTP period does not need to be converted because adjustment should be discouraged * moved TOTP defaults to DefaultTOTPConfiguration and removed the consts * arranged the root config validator in configuration file order * adjusted tests for the changes * moved duration notation docs to root of configuration * added references to duration notation where applicable * project wide gofmt and goimports: * run gofmt * run goimports -local github.com/authelia/authelia -w on all files * Make jwt_secret error uniform and add tests * now at 100% coverage for internal/configuration/validator/configuration.go 2020-04-05 12:37:21 +00:00			`"github.com/authelia/authelia/internal/configuration/schema"`
			`)`
Add validation for notifier configuration. 2020-01-21 20:15:40 +00:00
[MISC] Implement golint recommendations (#885) Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-04-20 21:03:38 +00:00			`// ValidateNotifier validates and update notifier configuration.`
[FEATURE] Enhance LDAP/SMTP TLS Configuration and Unify Them (#1557) * add new directive in the global scope `certificates_directory` which is used to bulk load certs and trust them in Authelia * this is in ADDITION to system certs and are trusted by both LDAP and SMTP * added a shared TLSConfig struct to be used by both SMTP and LDAP, and anything else in the future that requires tuning the TLS * remove usage of deprecated LDAP funcs Dial and DialTLS in favor of DialURL which is also easier to use * use the server name from LDAP URL or SMTP host when validating the certificate unless otherwise defined in the TLS section * added temporary translations from the old names to the new ones for all deprecated options * added docs * updated example configuration * final deprecations to be done in 4.28.0 * doc updates * fix misc linting issues * uniform deprecation notices for ease of final removal * added additional tests covering previously uncovered areas and the new configuration options * add non-fatal to certificate loading when system certs could not be loaded * adjust timeout of Suite ShortTimeouts * add warnings pusher for the StructValidator * make the schema suites uninform * utilize the warnings in the StructValidator * fix test suite usage for skip_verify * extract LDAP filter parsing into it's own function to make it possible to test * test LDAP filter parsing * update ErrorContainer interface * add tests to the StructValidator * add NewTLSConfig test * move baseDN for users/groups into parsed values * add tests to cover many of the outstanding areas in LDAP * add explicit deferred LDAP conn close to UpdatePassword * add some basic testing to SMTP notifier * suggestions from code review 2021-01-04 10:28:55 +00:00			`//nolint:gocyclo // TODO: Remove in 4.28. Should be able to remove this during the removal of deprecated config.`
Add validation for notifier configuration. 2020-01-21 20:15:40 +00:00			`func ValidateNotifier(configuration schema.NotifierConfiguration, validator schema.StructValidator) {`
			`if configuration.SMTP == nil && configuration.FileSystem == nil {`
			validator.Push(fmt.Errorf("Notifier should be either `smtp` or `filesystem`"))
			`return`
			`}`

			`if configuration.SMTP != nil && configuration.FileSystem != nil {`
			validator.Push(fmt.Errorf("Notifier should be either `smtp` or `filesystem`"))
			`return`
			`}`

			`if configuration.FileSystem != nil {`
			`if configuration.FileSystem.Filename == "" {`
			`validator.Push(fmt.Errorf("Filename of filesystem notifier must not be empty"))`
			`}`
[CI] Add wsl linter (#980) * [CI] Add wsl linter * Implement wsl recommendations Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-05 19:35:32 +00:00
Add validation for notifier configuration. 2020-01-21 20:15:40 +00:00			`return`
			`}`

			`if configuration.SMTP != nil {`
[FEATURE] Notifier Startup Checks (#889) * implement SMTP notifier startup check * check dial, starttls, auth, mail from, rcpt to, reset, and quit * log the error on failure * implement mock * misc optimizations, adjustments, and refactoring * implement validate_skip config option * fix comments to end with period * fix suites that used smtp notifier without a smtp container * add docs * add file notifier startup check * move file mode into const.go * disable gosec linting on insecureskipverify since it's intended, warned, and discouraged * minor PR commentary adjustment * apply suggestions from code review Co-Authored-By: Amir Zarrinkafsh <nightah@me.com> 2020-04-21 04:59:38 +00:00			`if configuration.SMTP.StartupCheckAddress == "" {`
			`configuration.SMTP.StartupCheckAddress = "test@authelia.com"`
			`}`
[CI] Add wsl linter (#980) * [CI] Add wsl linter * Implement wsl recommendations Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-05 19:35:32 +00:00
Add validation for notifier configuration. 2020-01-21 20:15:40 +00:00			`if configuration.SMTP.Host == "" {`
			`validator.Push(fmt.Errorf("Host of SMTP notifier must be provided"))`
			`}`

			`if configuration.SMTP.Port == 0 {`
			`validator.Push(fmt.Errorf("Port of SMTP notifier must be provided"))`
			`}`

			`if configuration.SMTP.Sender == "" {`
			`validator.Push(fmt.Errorf("Sender of SMTP notifier must be provided"))`
			`}`
[FEATURE] Customizable Email Subject (#830) * [FEATURE] Customizable Email Subject * allow users to optionally change email subject * this is so they can more easily communicate the source of the email * Update docs/configuration/notifier/smtp.md Co-Authored-By: Amir Zarrinkafsh <nightah@me.com> Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> Co-authored-by: Amir Zarrinkafsh <nightah@me.com> 2020-04-09 00:21:28 +00:00
			`if configuration.SMTP.Subject == "" {`
			`configuration.SMTP.Subject = schema.DefaultSMTPNotifierConfiguration.Subject`
			`}`
[CI] Add wsl linter (#980) * [CI] Add wsl linter * Implement wsl recommendations Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-05 19:35:32 +00:00
[BUGFIX] Add ability to specify SMTP HELO/EHLO identifier (#1416) * add docs * add configuration option for SMTP called `identifier` * default should act the same as before 2020-11-04 23:22:10 +00:00			`if configuration.SMTP.Identifier == "" {`
			`configuration.SMTP.Identifier = schema.DefaultSMTPNotifierConfiguration.Identifier`
			`}`

[FEATURE] Enhance LDAP/SMTP TLS Configuration and Unify Them (#1557) * add new directive in the global scope `certificates_directory` which is used to bulk load certs and trust them in Authelia * this is in ADDITION to system certs and are trusted by both LDAP and SMTP * added a shared TLSConfig struct to be used by both SMTP and LDAP, and anything else in the future that requires tuning the TLS * remove usage of deprecated LDAP funcs Dial and DialTLS in favor of DialURL which is also easier to use * use the server name from LDAP URL or SMTP host when validating the certificate unless otherwise defined in the TLS section * added temporary translations from the old names to the new ones for all deprecated options * added docs * updated example configuration * final deprecations to be done in 4.28.0 * doc updates * fix misc linting issues * uniform deprecation notices for ease of final removal * added additional tests covering previously uncovered areas and the new configuration options * add non-fatal to certificate loading when system certs could not be loaded * adjust timeout of Suite ShortTimeouts * add warnings pusher for the StructValidator * make the schema suites uninform * utilize the warnings in the StructValidator * fix test suite usage for skip_verify * extract LDAP filter parsing into it's own function to make it possible to test * test LDAP filter parsing * update ErrorContainer interface * add tests to the StructValidator * add NewTLSConfig test * move baseDN for users/groups into parsed values * add tests to cover many of the outstanding areas in LDAP * add explicit deferred LDAP conn close to UpdatePassword * add some basic testing to SMTP notifier * suggestions from code review 2021-01-04 10:28:55 +00:00			`if configuration.SMTP.TLS == nil {`
			`configuration.SMTP.TLS = schema.DefaultSMTPNotifierConfiguration.TLS`

			`// Deprecated. Maps deprecated values to the new ones. TODO: Remove in 4.28.`
			`if configuration.SMTP.DisableVerifyCert != nil {`
			validator.PushWarning(errors.New("DEPRECATED: SMTP Notifier `disable_verify_cert` option has been replaced by `notifier.smtp.tls.skip_verify` (will be removed in 4.28.0)"))

			`configuration.SMTP.TLS.SkipVerify = *configuration.SMTP.DisableVerifyCert`
			`}`
			`}`

			`// Deprecated. Maps deprecated values to the new ones. TODO: Remove in 4.28.`
			`if configuration.SMTP.TrustedCert != "" {`
			validator.PushWarning(errors.New("DEPRECATED: SMTP Notifier `trusted_cert` option has been replaced by the global option `certificates_directory` (will be removed in 4.28.0)"))
			`}`

			`if configuration.SMTP.TLS.ServerName == "" {`
			`configuration.SMTP.TLS.ServerName = configuration.SMTP.Host`
			`}`

Add validation for notifier configuration. 2020-01-21 20:15:40 +00:00			`return`
			`}`
			`}`